CVE-2023-28006

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jun 22, 2023

Updated: Jul 3, 2023

CWE ID 327

Summary

CVE-2023-28006 refers to a vulnerability in the OSD Bare Metal Server's use of an outdated cryptographic algorithm. This algorithm, which is no longer considered sufficiently secure, puts users at risk of data breaches and unauthorized access. Attackers can potentially exploit this weakness to intercept and decrypt sensitive information, leading to potential data loss or theft. It is strongly recommended that users of the OSD Bare Metal Server update to a more secure cryptographic algorithm as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

HCL Technologies Ltd.

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rvjioB
https://www.cve.org/CVERecord?id=CVE-2023-28006
https://nvd.nist.gov/vuln/detail/CVE-2023-28006

Back to Vulnerability Database

CVE-2023-28006

CVSS 3.1 Score 7.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations